Android Hacking
(Bug Bounty)
This is the most comprehensive Course to begin your Bug Bounty career in Android PenTesting.
This course will take you from the basics of Android Architecture to the advanced level of hunting vulnerabilities in the apps. No other course may provide with such a structured lesson and there are numerous Practical lesson with hands on hacking real and Live Android Applications.
Practicals for finding vulnerabilities are important and this course provides a lot of hands-on practical lessons to clear the concept of each vulnerability.
Topics Cover In This Course
- Pentesting White and Black box
- Genymotion Setup
- Installing Terminal
- Burp Suite Installation
- Setting up ADB
- Genymotion Proxy
- Proxy Certificate
- Application Security
- Unzip Wordlist
- Apktool
- Dex2jar
- File Permission Present in Android
- Android Database
- Android Appilication Teardown
- Application Signing
- Top 10 Security issues
- Top 10 Vulnerability Exploitation
- Lesser known Android Attacks
- Finding Vulnerabilities with Fuzz Testing
- Android Startup Process
- Digging Deeper
- Android Traffic Interception
- Passive Analysis 1
- Passive Analysis 2
- Active Analysis
- File System Partition
- AF-logical
- Logcat
- Information Leakage via Logcat Report
- Fetching Data
- SQlite
- Insecure Data Storage
- Possible to Steal any Protected files on Android Report
- Account Hijacking Possible through ADB backup Feature Report
- Webview Vulnerablity Report
- Cross-Application Scripting in Android
- Vulnerable to JavaScript Injection Report
- HTML or XSS rendered in Android App
- File Permission
- Client-side Attack Surface
- Client-side Attack Surface 2
- Local Attack Surfaces
- Physical Attack Surfaces
- Attacking the Radio Interface Layer
- Debugging and Analyzing Vulnerabilities
- Exploit Mitigations
- Authentication Failed Mobile Version Report
- Manifest allows for ADB backup attack when USB debugging is enabled report
- Shopify Android Client all API Request's Response Leakage Report
- Multiple Critical Vulnerabilities in Odnoklassniki Android Application Report
- Email Leak in Transactions in Android App Report
- Android Address Bar Spoofing Vulnerability Report
- Bypass Pin
- Coinbase Android Application - Bitcoin Wallet Leaks OAuth Response Code report
- Content Provider Information Leakage report
That Is All
0 Comments